Security Architect – SAP & Enterprise Platforms, Identity & Access Management
Head Office - Canadian Division (35), Canada
CAD 117K-154K Senior-level Full Time
Tasks
- Advise on SAP GRC access controls
- Align security architecture with enterprise risk frameworks
- Architect JML provisioning and deprovisioning
- Architect MFA and passwordless mechanisms
- Architect PAM for administrative service and privileged accounts
- Architect RBAC and ABAC controls
- Architect access governance controls
- Architect security controls for non SAP applications
- Define SAP logging and monitoring standards
- Define SAP user lifecycle processes
- Define encryption and secrets management standards
- Define identity lifecycle standards
- Define privileged access standards
- Define security standards and reference architectures
- Design SAP security roles and authorizations
- Design SSO and federation integrations
- Design cloud IAM controls
- Design conditional access policies
- Design end to end security architecture
- Design enterprise IAM architecture
- Design secure authentication and authorization
- Design secure integration patterns
- Design segregation of duties controls
- Design session monitoring for privileged users
- Design user access reviews
- Embed security-by-design
- Enforce least privilege
- Establish authentication standards
- Establish authorization standards
- Integrate IAM with HR ITSM and GRC
- Integrate IAM with enterprise applications
- Integrate PAM with vaulting and just in time access
- Perform threat modeling and control gap analysis
- Review solution designs for security sign off
Perks/Benefits
- Employer insurance
- Flexible work environment
- Paid parental leave
- Paid time off
- Retirement plan
- Telemedicine
- Training and development
Skills/Tech-stack
ABAC | APIs | AWS | Access Management | Active Directory | Azure | Azure AD | Cloud IAM | Encryption | Entra ID | Federation | GCP | GDPR | IAM architecture | ISO 27001 | Identity and Access Management | Identity and access | Identity-first security | Incident Response | Integration Patterns | Joiner-Mover-Leaver | LDAP | Logging | MFA | Monitoring | OAuth 2.0 | OpenID Connect | PAM | Privileged Access | Privileged Access Management | RBAC | REST | SAML | SAP | SAP Fiori | SAP GRC | SAP S4HANA | SDLC | SOX | SSO | Secrets management | Secure integration | Secure integration patterns | Threat modeling | Zero Trust
Education
Roles
Architect | Engineer | Security | Security Architect | Security Engineer
Related jobs
-
Senior Security Engineer - Cloud Identity CAD 136K-171KAWS CloudFormation | AWS EC2 | AWS IAM | AWS Lambda | Access ControlDevelopment dollars | Equity | Flexible vacation time | Flexible work environment | Health insuranceSenior-level Full TimeToronto, Canada; Vancouver, Canada7h ago
-
Senior Security Engineer - Cloud Identity CAD 136K-171KAWS IAM | Access Management | Active Directory | CI/CD | Certificate Lifecycle ManagementDevelopment dollars | Equity | Family-forming benefits | Flexible vacation time | Health insuranceSenior-level Full TimeToronto, Canada; Vancouver, Canada7h ago
-
Staff Product Security Engineer CAD 160K-200KAWS IAM | AWS Security | AWS Security Hub | Admission controllers | CI/CDCoworking stipend | Dental insurance coverage | Destination summits | Flexible time off | Health insurance coverageSenior-level Full TimeCanada - Remote R10h ago
-
Principal Information Security Analyst CAD 125K-165KAPI Security | Alert triage | CIS Controls | CSPM | Cause analysisHybrid work | Mentorship | Professional developmentSenior-level Full TimeToronto, Ontario, Canada1d ago
-
Principal Information Security Analyst CAD 125K-136KAPI Security | Alert triage | CIS Controls | CSPM | Cause analysisCaring co-workers | Growth opportunities | Hybrid work | Inclusive team cultureSenior-level Full TimeCalgary, Alberta, Canada1d ago
-
Senior Engineer - Cybersecurity CAD 120K-140KAdaptive Authentication | Azure Entra | Azure Entra ID | CIAM | Claims mappingEmployee Assistance Program (EAP) | Flexible working environment | LinkedIn Learning | Volunteer time offSenior-level Full TimeToronto, ON, Canada1d ago
-
Access Control | Access Management | Accreditation | Communication Security | Defense in DepthAccommodation during recruitment process | Hybrid work | Onsite workSenior-level Full TimeGatineau, QC1d ago
-
Access Management | By Design | Compliance Management | Cryptography | EncryptionSenior-level Full TimeGatineau, QC1d ago
-
Access Management | Accreditation support | Communication Security | Defense in Depth | Endpoint protectionAccommodations during recruitment processMid-level Full TimeGatineau, QC1d ago
-
Security Engineer CAD 120K-168KAdvanced Security | Authentication | Authorization | Bug Bounty | Burp SuiteCompany offsites | Flexible leave | Flexible working hours | LGBTQ friendly | Lateral growth opportunitiesMid-level Full TimeVancouver R1d ago
-
Security Engineer CAD 84K-138K802.1x | BitLocker | Data Loss Prevention | Data loss | Detection and ResponseCareer progression | Dental insurance | Health insurance | Professional development | Vision insuranceMid-level Full TimeToronto, Canada2d ago
-
AWS | Access Control | Access Management | Access Manager | Active DirectoryAnnual performance based incentive bonus | Defined contribution pension plan | Fitness discounts | Flexible work environment | Health, dental, and vision benefitsSenior-level Full TimeMBC NB Head Office Moncton, Canada2d ago
-
IAM Engineer – Authentication Management (AM) CAD 110K-125KActive Directory | Admin Consent | App Registration | Automation | ClearPassCareer advancement and training opportunities | Dental benefits | Employee stock purchase plan | Health benefits | Hybrid workSenior-level Full TimeEdmonton, AB, CA, Canada2d ago
-
Security Operations Specialist CAD 66K-92KCause analysis | Detection and Response | Incident Response | Managed Detection and Response | Managed detectionEntry-level Full TimeMississauga / Forsythe - ON, Canada2d ago
-
Security Operations Analyst- Managed Services CAD 56K-78KAzure | Cybersecurity | Detection and Response | Incident Response | Managed Detection and Response24x7 managed services coverage schedule | Overtime availability | Potential certification support | Shadowing opportunities | Training opportunitiesMid-level Full TimeMississauga / Forsythe - ON, Canada2d ago
-
Senior Security Architecture Specialist (Hybrid) CAD 94K-157KAPI Security | Alerting | Architecture Decision Records | Code review | Compliance TraceabilityHybrid work environment | Office and remote work optionsSenior-level Full TimeMontreal 700, Canada R2d ago
-
Senior Architect - Cybersecurity USD 107K-199K12-Factor | 12-Factor App | AWS | Access Management | Application scriptingDental insurance | Disability insurance | Health insurance | Life insurance | Paid time offSenior-level Full TimeCAN, Ontario, Toronto, 200 Bloor Street …2d ago
-
Senior GRC Analyst CAD 77K-106KAML | ATF | Audit Readiness | AuditBoard | Awareness TrainingCareer growth opportunities | Diversity, equity, inclusion and belonging culture | Employee resources groups | Hybrid work environmentSenior-level Full TimeToronto, Ontario, Canada2d ago
-
Senior GRC Analyst CAD 116K-150KAML | ATF | Audit Readiness | AuditBoard | AutomationEmployee resource groups | Flexible-hybrid work | Growth opportunities | Mentorship | Purpose-driven workSenior-level Full TimeVancouver, British Columbia, Canada2d ago
-
Senior Security Engineer USD 139K-210KAWS | Access Control | Access Management | Alerting | Audit ReadinessContinuing education budget | Coworking stipend | Home office stipend | Remote-first environmentSenior-level Full TimeRemote: United States | Canada R2d ago
-
Authentication | Code review | Incident Response | JavaScript | ObservabilityContinuous learning support | Flexible working environment | Paid time off | Remote-first work modelSenior-level Full TimeCanada2d ago
-
Alert management | Cloud Security | Compliance | DLP policies | Data ClassificationSenior-level ContractHalifax Central, Canada2d ago
-
Senior DevSecOps Consultant CAD 118K-152KAWS | Ansible | Azure | CI/CD | Configuration ManagementDisability insurance | Health insurance | Life insurance | Parental leave | Retirement savings planSenior-level Full TimeCanada - Montreal2d ago
-
Access Management | Business Continuity | Cause analysis | Cloud Security | Disaster RecoveryDental care | Employee assistance program | Extended health care | Life insurance | Membership reimbursementSenior-level Full TimeToronto, ON, M9W 1A2, CA R2d ago
-
Cyber Security Engineer CAD 104K-131KAWS | Anti-phishing | Arctic Wolf | Azure | CISAfter hours incident response | On call response dutiesSenior-level Full TimeToronto-661 University, Canada3d ago